Overview

overview

10

Static

static

dridex

windows10_x64

10

Sharing

Copy URL
Twitter E-mail

General

  • Target

    09e71e09b078cfd23e7e62bdf86f8592195b37cbb4effc9af00652f3ba7fad37

  • Size

    4.0MB

  • Sample

    211202-tqbmtsadbp

  • MD5

    728f38d39c035cd7908cac6c22cb3f46

  • SHA1

    55d9caf8c3e95a66bc57cd3e6732ec871792badd

  • SHA256

    09e71e09b078cfd23e7e62bdf86f8592195b37cbb4effc9af00652f3ba7fad37

  • SHA512

    12aae3711174f7007c56c13b638ff3a8ff6ce90f2657989024ce916a0c2cd8ccd344f7968f81dedf7f2a95bbeebb941c00818e68a8f5df4d88e901b62e5900c4

Score
10/10
xmrigminer

Malware Config

Targets

    • Target

      09e71e09b078cfd23e7e62bdf86f8592195b37cbb4effc9af00652f3ba7fad37

    • Size

      4.0MB

    • MD5

      728f38d39c035cd7908cac6c22cb3f46

    • SHA1

      55d9caf8c3e95a66bc57cd3e6732ec871792badd

    • SHA256

      09e71e09b078cfd23e7e62bdf86f8592195b37cbb4effc9af00652f3ba7fad37

    • SHA512

      12aae3711174f7007c56c13b638ff3a8ff6ce90f2657989024ce916a0c2cd8ccd344f7968f81dedf7f2a95bbeebb941c00818e68a8f5df4d88e901b62e5900c4

    Score
    10/10
    xmrigminer

    • xmrig

      XMRig is a high performance, open source, cross platform CPU/GPU miner.

      minerxmrig

    • XMRig Miner Payload

      miner

    • Executes dropped EXE

    • Suspicious use of SetThreadContext

    behavioral1

MITRE ATT&CK Matrix ATT&CK v6

Initial Access

Execution

Scheduled Task

1
T1053

Persistence

Scheduled Task

1
T1053

Privilege Escalation

Scheduled Task

1
T1053

Defense Evasion

Credential Access

Discovery

System Information Discovery

1
T1082

Lateral Movement

Collection

Exfiltration

Command and Control

Impact

Tasks